Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139332e34332e37302e302f32342d3234203d3e20313336373837.roa
File: 3139332e34332e37302e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: SNBZXw1csXa6M84U+cAEFBEe/TUuX7fHS4+N838rzWA=
Subject key identifier: B5:66:B8:73:01:21:E2:C8:71:CE:47:DB:91:57:35:04:46:70:11:8C
Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Certificate serial: 702A1CC7D7C9E9C5283795A47268DEF71E62AE05
Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139332e34332e37302e302f32342d3234203d3e20313336373837.roa
Signing time: Wed 05 Mar 2025 19:45:49 +0000
ROA not before: Wed 05 Mar 2025 19:40:49 +0000
ROA not after: Wed 04 Mar 2026 19:45:49 +0000
asID: 136787
IP address blocks: 193.43.70.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:2a:1c:c7:d7:c9:e9:c5:28:37:95:a4:72:68:de:f7:1e:62:ae:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Validity
Not Before: Mar 5 19:40:49 2025 GMT
Not After : Mar 4 19:45:49 2026 GMT
Subject: CN=B566B8730121E2C871CE47DB915735044670118C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:3a:47:bf:7a:ae:c7:02:7b:ef:6c:cc:87:f9:
f0:c5:0b:ed:a7:c2:cd:26:30:d0:51:83:cc:07:ad:
68:17:55:c3:e5:cd:81:e5:40:c6:c9:4b:32:92:f0:
95:8c:59:f5:ee:40:cc:6d:f4:fb:c3:9d:3e:36:ef:
16:91:aa:30:e3:fa:8e:a8:46:8a:23:c2:9a:8d:63:
89:af:22:03:83:4d:c2:71:47:b7:0c:57:9f:89:43:
15:8c:08:28:30:69:8e:db:2d:8b:d8:9a:25:69:d2:
b1:cd:fb:1a:cd:b7:2d:8b:ab:1a:a6:8b:33:78:d0:
86:f5:f3:34:81:76:e1:36:94:8c:47:03:81:75:09:
28:90:38:e4:0e:2e:c9:05:d5:02:82:50:30:4d:12:
b0:33:e4:b6:c3:4c:b4:b4:5d:e5:29:16:bf:bc:7d:
06:07:f7:a9:73:6f:2d:ce:67:d3:d1:34:40:f8:f3:
87:00:7d:96:db:b9:9f:7c:17:c8:ca:e1:67:8d:7c:
10:2f:88:45:61:fc:1e:cb:d5:c7:a5:34:ad:97:79:
72:8b:f1:f2:de:33:f3:a2:f8:56:85:ac:2b:2a:2a:
c5:0f:a8:db:d0:44:d6:09:f8:8b:19:a6:6d:2d:d9:
6b:d3:05:f2:6b:45:14:a5:d9:28:1e:31:b9:25:1c:
ba:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:66:B8:73:01:21:E2:C8:71:CE:47:DB:91:57:35:04:46:70:11:8C
X509v3 Authority Key Identifier:
keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139332e34332e37302e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.43.70.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:06:77:73:aa:1a:4d:4b:eb:2e:41:db:b6:33:83:64:c0:6f:
96:6a:53:86:2a:d7:0d:32:a7:bb:50:b6:80:61:bc:ea:a1:a9:
40:76:42:fc:85:bf:a8:bd:99:43:b7:af:0f:78:ea:f9:27:2e:
95:9f:0b:5b:0a:1d:9e:06:bc:d7:e6:23:5a:6a:10:b3:e4:8b:
a7:70:81:08:14:86:9c:77:74:34:18:75:3e:3f:23:b0:2e:a6:
f9:c5:19:09:0e:f7:ff:87:c7:92:f9:15:96:76:31:17:95:bd:
78:3a:a6:64:dd:45:93:0d:b4:b9:b6:c7:11:6a:75:7d:c4:aa:
34:10:f6:a9:df:1c:04:96:a1:2d:11:39:eb:51:2f:d6:9f:15:
96:e2:80:4b:51:50:ba:76:35:62:80:68:5f:3b:24:5f:a5:1d:
dd:c8:7c:a4:dc:90:00:5a:0d:c8:b7:ee:40:1b:f1:8c:5f:93:
05:50:e4:07:8c:aa:72:f8:cd:6b:82:f8:6a:38:b9:1b:d6:23:
45:34:96:54:b4:e5:ba:fd:97:de:7f:41:47:69:fb:15:b9:42:
3b:b2:13:c7:c4:81:03:86:65:05:97:2f:a0:cb:9a:03:d2:2f:
b0:a2:22:d5:8e:ed:01:63:8a:8f:aa:7c:42:8c:80:83:c4:d3:
9e:56:55:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 19:51:29 2025 by rpki-client